revi-archive/phorge-phorge
1
0
Fork 0
mirror of https://we.phorge.it/source/phorge.git synced 2025-01-02 02:40:58 +01:00
Code Issues Releases Wiki Activity
phorge-phorge/src
History
epriestley febc494737 Actually check CSRF on Password and LDAP forms 
Summary: Ref T4339. We didn't previously check `isFormPost()` on these, but now should.

Test Plan: Changed csrf token on login, got kicked out.

Reviewers: btrahan, chad

Reviewed By: chad

CC: aran

Maniphest Tasks: T4339

Differential Revision: https://secure.phabricator.com/D8051
2014-01-23 14:18:26 -08:00
..
aphront Support CSRF for logged-out users 2014-01-23 14:03:54 -08:00
applications Actually check CSRF on Password and LDAP forms 2014-01-23 14:18:26 -08:00
docs Remarkup - add underline rule 2014-01-17 13:11:26 -08:00
extensions Add src/extensions/ to Phabricator 2013-08-14 15:38:06 -07:00
infrastructure Detect developer error when constructing forms with absolute URIs 2014-01-23 14:03:28 -08:00
view Support CSRF for logged-out users 2014-01-23 14:03:54 -08:00
__phutil_library_init__.php Delete license headers from files 2012-11-05 11:16:51 -08:00
__phutil_library_map__.php Consolidate use of magical cookie name strings 2014-01-23 14:01:35 -08:00